[DShield] 3127/tcp by Doomjuice (Kaspersky) - MyDoom takeover ?

allan.vanleeuwen@orangemail.nl allan.vanleeuwen at orangemail.nl
Tue Feb 10 09:06:12 GMT 2004

I would like a copy ... Please zip with a password so my mailgateway wont
eat it again....
Thanks very much, I'll send you a link of my investigation after I've posted
it ..


-----Original Message-----
From: Blake McNeill [mailto:mcneillb at linklogger.com] 
Sent: maandag 9 februari 2004 23:08
To: General DShield Discussion List
Subject: Re: [DShield] 3127/tcp by Doomjuice (Kaspersky) - MyDoom takeover?

Right on a PortPeeker capture (I wrote that :), freebie tool that it is).
If anyone would like I have the DoomJuice worm (packed/unpacked) and can
send it to you for your analysis if desired (or what is the best way to hand
out something like this??)

http://www.SonicLogger.com - Logging Software for SonicWall
http://www.LinkLogger.com - Logging Software for Linksys, Netgear and Zyxel

list mailing list
list at dshield.org
To change your subscription options (or unsubscribe), see:
De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is alleen
bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt,
wordt u verzocht de inhoud niet te gebruiken en de afzender direct te
informeren door het bericht te retourneren. Hoewel Orange maatregelen heeft
genomen om virussen in deze email of attachments te voorkomen, dient u ook
zelf na te gaan of virussen aanwezig zijn aangezien Orange niet
aansprakelijk is voor computervirussen die veroorzaakt zijn door deze

The information contained in this message may be confidential and is
intended to be only for the addressee. Should you receive this message
unintentionally, please do not use the contents herein and notify the sender
immediately by return e-mail. Although Orange has taken steps to ensure that
this email and attachments are free from any virus, you do need to verify
the possibility of their existence as Orange can take no responsibility for
any computer virus which might be transferred by way of this email.

More information about the list mailing list